Category: Featured
XDR: Your cybersecurity wingman
As cybercrime continues to rise, the need for automation in cybersecurity has become clear. IT security experts often lack the expertise, headcount, and time to manage the increasing number of alerts and potential threats effectively. For managed service providers (MSPs)...
Tech Time Warp: An APT programming language
In conjunction with research centers like the Massachusetts Institute of Technology (MIT), the defense industry drove many rapid technological advances post-World War II. That’s where Douglas T. Ross and his team significantly sped up manufacturing with the development of the...
Cybersecurity Threat Advisory: New OpenSHH vulnerabilities
Two OpenSSH vulnerabilities, CVE-2025-26465 and CVE-2025-26466, affect multiple versions of OpenSSH. These vulnerabilities can be exploited for man-in-the-middle (MitM) attacks or cause a denial-of-service (DoS) attack. Review this Cybersecurity Threat Advisory to mitigate your risk. What is the threat? OpenSSH...
Positive outlook for managed services spending in 2025
Selling managed services to larger enterprises is distinctly different from selling them to smaller organizations. However, tracking the amount of spending specifically allocated to managed services by larger organizations does serve as a barometer to track overall expectations. For instance,...
Cybersecurity Threat Advisory: Xerox printer vulnerabilities
Two vulnerabilities, CVE-2024-12510 and CVE-2024-12511, have been found in the Xerox VersaLink C7025 Multifunction Printer. Upon successful exploitation, bad actors can capture authentication credentials through pass-back attacks via lightweight directory access protocol (LDAP), server message block (SMB), and file transfer...
Cybersecurity Threat Advisory: Critical Juniper vulnerability
A critical vulnerability, CVE-2025-21589, is found in Juniper Networks’ Session Smart Router, Session Smart Conductor, and WAN Assurance Router products. This flaw enables threat actors to bypass authentication mechanisms and gain administrative control over affected devices. Continue reading this Cybersecurity...
Cybersecurity Threat Advisory: Brute force attack targeting edge devices
The Shadowserver Foundation uncovered a large brute force attack, with approximately 2.8 million IPs launching attacks on edge devices like firewalls, routers, and VPNs. Continue to read this Cybersecurity Threat Advisory to learn how you can mitigate the risks of...
Cybersecurity Threat Advisory: High-severity PAN-OS vulnerability
A high-severity authentication bypass vulnerability in PAN-OS software, CVE-2025-0108, was disclosed. This flaw allows unauthenticated attackers with network access to bypass authentication and invoke PHP scripts, compromising system integrity and confidentiality. Read this Cybersecurity Threat Advisory to learn how you can...
Tech Time Warp: It’s the Storm Worm, not a secret admirer
The FBI had a real Debbie Downer message to deliver in 2008: That unexpected Valentine’s Day e-card was not from a secret admirer. Instead, it was an invitation for the unwitting recipient to join the Storm Worm botnet. Learn all...
Cybersecurity Threat Advisory: Apple critical zero-day vulnerability
Apple has issued emergency security updates to address a critical zero-day vulnerability, CVE-2025-24200, which has been exploited in targeted and “extremely sophisticated” attacks. This vulnerability affects iPhone and iPad users, posing significant risks to user security. Review the details of...
